CVE-2002-1254 Information

Description

Internet Explorer 5.5 and 6.0 allows remote attackers to bypass the cross-domain security model and access information on the local system or in other domains and possibly execute code via cached methods and objects aka \Cross Domain Verification via Cached Methods.\

Reference

http://marc.info/?l=bugtraq&m=103530131201191&w=2 http://security.greymagic.com/adv/gm012-ie/ http://www.ciac.org/ciac/bulletins/n-018.shtml http://www.iss.net/security_center/static/10435.php http://www.iss.net/security_center/static/10436.php http://www.iss.net/security_center/static/10437.php http://www.iss.net/security_center/static/10438.php http://www.iss.net/security_center/static/10439.php http://www.securityfocus.com/bid/6028 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-066 https://exchange.xforce.ibmcloud.com/vulnerabilities/10432 https://oval.cisecurity.org/repository/search/definition/oval3Aorg.mitre.oval3Adef3A388 https://oval.cisecurity.org/repository/search/definition/oval3Aorg.mitre.oval3Adef3A408